Get to Know Us:
It's fun to work in a company where people truly believe in what they're doing!
At BlackLine, we're committed to bringing passion and customer focus to the business of enterprise applications.
Since being founded in 2001, BlackLine has become a leading provider of cloud software that automates and controls the entire financial close process. Our vision is to modernize the finance and accounting function to enable greater operational effectiveness and agility, and we are committed to delivering innovative solutions and services to empower accounting and finance leaders around the world to achieve Modern Finance.
Being a best-in-class SaaS Company, we understand that bringing in new ideas and innovative technology is mission critical. At BlackLine we are always working with new, cutting edge technology that encourages our teams to learn something new and expand their creativity and technical skillset that will accelerate their careers.
Work, Play and Grow at BlackLine!
Make Your Mark:
The GRC Analyst will support Information Security Governance, Risk Management, and Compliance (GRC) workflows, validate adherence to information security standards, coordinate audit and regulatory compliance projects, facilitate information security awareness initiatives, help maintain standards and policies that govern information security program for the company.
You'll Get To:
- Assist GRC management and c ontribute to the ongoing development the information security, GRC, data governance and privacy activities, strategy, and roadmap.
- Assist with operating IT Risk Assessment, Vendor Management, and Risk Management programs.
- Support internal and external audits across security compliance programs (ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 9001, ISO 42001, SOC 1-Type 2, SOC 2-Type 2, etc.).
- Collect and maintain evidence of compliance with information security policies, data governance and regulatory requirements (i.e., GDPR, CCPA, HIPAA, etc.).
- Coordinate written responses to customers and prospects on information security controls and regulatory compliance.
- Review and update information security, data governance policies and privacy procedures, standards, and other InfoSec documentation.
- Assist in maintaining Information Security and GRC documentation repository.
- Evaluate design and implementation of security, data governance and privacy controls and support the build out automated operating effectiveness control monitoring capabilities.
- Support vendor due diligence, security and privacy assessments and review processes.
What You'll Bring:
- Understanding of technical aspects of information security.
- Working knowledge of common IT technologies and processes.
- Understanding of common Information Security and Information Technology frameworks and standards, such as, COBIT, CSA, NIST 800-53, SOC 1, SOC 2 and ISO 27001.
- Understanding of privacy information management frameworks (e.g., ISO 27018, ISO 27701)
- Thorough understanding of Information Security Governance, Risk Management, Compliance, and Audit Management concepts and processes
- Ability to transform abstract regulatory requirements into cohesive compliance actions.
- Effective communication skills including ability to present technical subjects to non-technical audiences.
- Solid organizational skills, including multitasking, attention to detail and time-management
- Ability to collaborate in a team setting and facilitate conversations involving cross-functional groups.
- Strong understanding of privacy concepts and regulations, PII, PHI, financial data regulations, data residency requirements, and international regulatory aspects pertaining to sensitive information (i.e., GDPR, CCPA, HIPAA, DPA etc.)
- Strong working knowledge of Jira, Confluence, SharePoint, Visio, Microsoft office suite; presentation and report development skills,
Other:
- General knowledge of tools services commonly employed within InfoSec is a plus (DLP, IDS/IPS, SIEM, CASB, etc.).
- Experience with application security, SaaS, or cloud security is a plus.
We're Even More Excited If You Have:
- Work is primarily sedentary in nature; no special demands required
- Certifications highly desired (CISA, CIA, CISM, CISSP, CRISC, ISO Lead Auditor, Internal audit etc.)
- Prior Audit Management or Regulatory Compliance experience a plus
- Understanding of technical Information Security concepts a plus
Thrive at BlackLine Because You Are Joining:
- A technology-based company with a sense of adventure and a vision for the future. Every door at BlackLine is open. Just bring your brains, your problem-solving skills, and be part of a winning team at the world's most trusted name in Finance Automation!
- A culture that is kind, open, and accepting. It's a place where people can embrace what makes them unique, and the mix of cultural backgrounds and varying interests cultivates diverse thought and perspectives.
- A culture where BlackLiner's continued growth and learning is empowered. BlackLine offers a wide variety of professional development seminars and inclusive affinity groups to celebrate and support our diversity.
BlackLine is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity or expression, race, ethnicity, age, religious creed, national origin, physical or mental disability, ancestry, color, marital status, sexual orientation, military or veteran status, status as a victim of domestic violence, sexual assault or stalking, medical condition, genetic information, or any other protected class or category recognized by applicable equal employment opportunity or other similar laws.
BlackLine recognizes that the ways we work and the workplace itself has shifted. We innovate in a workplace that optimizes a combination of virtual and in-person interactions to maximize collaboration and nurture our culture. Candidates who live within a reasonable commute to one of our offices will work in the office at least 2 days a week.
What We Do
BlackLine gives you the innovation of AI-powered software solutions you need to optimize workflows, reduce risk, and prepare for tomorrow’s strategic F&A challenges. BlackLine is the leader in the cloud financial close market and the first and only holistic solution to address intercompany operations. Companies can execute and manage financial close, intercompany, and invoice-to-cash processes with end-to-end transparency and intelligent automation. They can shift their focus from governance to guidance and deliver strategic business outcomes faster and with greater control.
Since our founding in 2001, BlackLine has become a leading provider of cloud software that automates and controls critical accounting processes. BlackLine is ranked No.5 globally on The Software Report’s 2023 ‘Top 100 Software Companies’ list and earned ‘Top Rated’ awards in Accounting, Financial Close, and Accounts Receivable from TrustRadius. BlackLine was also named to Newsweek’s ‘Most Loved Workplaces’ lists in the US (2022) and UK (2023).
BlackLine is trusted by thousands of companies across all industries and geographies. Headquartered in Woodland Hills, CA, BlackLine is a global company with operations in locations including Pleasanton, New York, London, Paris, Bengaluru, Frankfurt, Tokyo, Singapore, and Sydney.
Leading companies like SiriusXM and Domino’s trust BlackLine to close faster with complete and accurate results.
Why Work With Us
BlackLine is a female-founded company led by Therese Tucker, founder and co-CEO.
BlackLine is a people-focused company offering a collaborative environment, exciting new challenges, opportunities to acquire new skills, and mentoring to help you succeed. We empower our teams to thrive and always seek new and innovative ways to solve problems.
Gallery
BlackLine Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
BlackLine recognizes that the ways we work and the workplace itself has shifted. Candidates who live within a reasonable commute to one of our offices will work in the office at least 2 days a week.